ProHoster > Ibhulogi > iindaba ze-intanethi > I-ProFTPD 1.3.8 ftp ukukhululwa kweseva

I-ProFTPD 1.3.8 ftp ukukhululwa kweseva

Emva kweminyaka emibini enesiqingatha yophuhliso, ukukhululwa okubalulekileyo kwe-ftp server ye-ProFTPD 1.3.8 iye yapapashwa, kunye namandla ekwandisweni kunye nokusebenza, kunye nobuthathaka ekuchongweni kwexesha elithile lobuthathaka obunobungozi. Ukukhutshwa kokulungiswa kweProFTPD 1.3.7f kufumaneka ngexesha elifanayo kwaye kuya kuba ngowokugqibela kwi-ProFTPD 1.3.7 series.

Iinguqulelo eziphambili zeProFTPD 1.3.8:

  • Inkxaso ye-CSID (i-ID yoMthengi / ye-Server) Umyalelo we-FTP uphunyeziwe, ongasetyenziselwa ukuthumela ulwazi ukuchonga isofthiwe yeklayenti kumncedisi kwaye ufumane impendulo ngolwazi lokuchonga umncedisi. Umzekelo, umxhasi unokuchwetheza "CSID Name=BSD FTP; Uguqulelo=7.3" kwaye ufumane "200 Name=ProFTPD; Inguqulelo=1.3.8; OS=Ubuntu Linux; OSVer=22.04; CaseSensitive=1; DirSep=/;".
  • Inkxaso eyongeziweyo yolwandiso lwe-"home-directory" ukwandisa i ~/ kunye ne ~umsebenzisi/ iindlela zokuphunyezwa kweprotocol yeSFTP. Ungasebenzisa "iSFTExtensions homeDirectory" ukuyivula.
  • Inkxaso eyongeziweyo ye-AES-GCM ciphers kwi-mod_sftp "[imeyile ikhuselwe]"Kwaye"[imeyile ikhuselwe]", kunye nokujikeleziswa kwezitshixo zenginginya ("SFTPOptions NoHostkeyRotation") usebenzisa i-OpenSSH izandiso "[imeyile ikhuselwe]"Kwaye"[imeyile ikhuselwe]". Inkxaso yokwenza i-AES GCM ciphers yongezwe kumyalelo weSFTPCiphers.
  • Kongezwe "--enable-pcre2" ukhetho lokwakha ngelayibrari yePCRE2 endaweni yePCRE. Ukukwazi ukukhetha injini yokubonisa rhoqo phakathi kwe-PCRE2, iPOSIX kunye ne-PCRE yongezwe kumyalelo weRegexOptions.
  • Yongeza i-SFTPHostKeys isiyalele ukukhankanya ii-algorithms ezingundoqo ezinikezelwa kubathengi bemodyuli ye-mod_sftp.
  • I-Facts AddedDefault Umyalelo wokuchaza ngokucacileyo uluhlu "lweenyani" ezibuyiselwe kwiimpendulo zeMLSD/MLSD FTP.
  • Yongezwe i-LDAPConnectTimeout yomyalelo ukuchaza ixesha lokuphuma koqhagamshelwano kwiseva ye-LDAP.
  • Umyalelo we-ListStyle wongezwe ukwenzela ukuba kudweliswe imixholo yabalawuli kwisimbo seWindows.
  • Umyalelo weRedisLogFormatExtra uphunyeziwe ukongeza izitshixo zesiko kunye namaxabiso kwilogi ye-JSON, equkwe yiRedisLogOnCommand kunye neRedisLogOnEvent imiyalelo.
  • I-MaxLoginAttemptsFromUser ipharamitha yongezwe kumyalelo weBanOnEvent ukuvala indibaniselwano enikiweyo yabasebenzisi kunye needilesi ze-IP.
  • Inkxaso eyongeziweyo ye-TLS xa idibanisa kwi-Redis DBMS kumyalelo weRedisSentinel. Inkxaso eyongeziweyo kumyalelo weRedisServer wolungelelwaniso lomyalelo we-AUTH olungisiweyo osetyenzisiweyo ukusukela kwiRedis 6.x.
  • Inkxaso ye-ETM (Encrypt-En-MAC) i-hashes yongezwe kwi-SFTPDigests umyalelo.
  • Kongezwe iflegi ye-ReusePort kumyalelo we-SocketOptions ukwenza i-SO_REUSEPORT imo yesokethi isebenze.
  • Iflegi ye-AllowSymlinkUpload yongezwe kumyalelo weTransferOptions ukubuyisela ukukwazi ukulayisha kwiilinki eziyisimboli.
  • Inkxaso ye "curve448-sha512" i-algorithm yokutshintshiselana engundoqo yongezwe kumyalelo weSFTPKeyExchanges.
  • Ikhono lokutshintsha iifayile ezongezelelweyo kwiitafile zokuvumela / ukukhanyela zongezwe kwimodyuli ye-mod_wrap2.
  • Ixabiso elimiselweyo le-FSCachePolicy parameter litshintshiwe ku-"off".
  • Imodyuli ye-mod_sftp ilungiselelwe ukusetyenziswa nethala leencwadi le-OpenSSL 3.x.
  • Inkxaso eyongeziweyo yokwakha kunye nethala leencwadi le-libidn2 lokusebenzisa amaGama eDomain aMazwe ngaMazwe (IDNs).
  • Into eluncedo ye-ftpasswd yokuvelisa i-password hashes ine-SHA256 endaweni ye-MD5 eyenziwe ngokuzenzekelayo.

umthombo: opennet.ru

Yongeza izimvo